According to a blog post published on Thursday, the issue appears to have been the result of hackers compromising a vulnerable build server.

Malware seen using the digital signature includes pwdump7 v 7.1 (a utility that scoops up password hashes, and is sometimes used as a single file that statically links the OpenSSL library libeay32.dll.)

According to Adobe, the second malicious utility is myGeeksmail.dll, a malicious ISAPI filter.

Adobe plans next week to revoke the certificate for all code signed after July 10, 2012, according to an advisory from the company:

Since Mike Wood discussed the abuse of digital signatures in Vancouver two years ago, there have been several stories about certificate abuse in attacks.

It is probably just an odd coincidence that news of this latest instance of certificate abuse has come to light while the world’s leading anti-virus experts are once again meeting at the Virus Bulletin conference, this time in Dallas.

About the author

Paul O Baccas (aka pob) joined Sophos in 1997 after studying Engineering Science at Oxford University. After nearly 16 years, he has left Sophos to Proofpoint and will be writing as an independent malware researcher.
Paul has: published several papers, presented at several Virus Bulletins and was a technical editor for "AVIEN Malware Defense Guide". He has contributed to Virus Bulletin and is a frequent contributor to the NakedSecurity blog.

This is just one more in a long line of weaknesses found in Adobe's stuff, are we going to be seeing the slow death of the company due to eroded confidence? I can't be the only one wondering if it's worth running it?

Could you update the reference to "Adobe plans next week to revoke the certificate for all code signed before July 10, 2012, according to an advisory from the company"–the certificate will be revoked for all code signed AFTER (not before) July 10, 2012.

First get a Comodo certificate to sign your trojans, and now steal the certificate of adobe and use as your own? Wow!

The hacker intelligence fascinates me. Of course I'm not happy with this knowledge used for evil, but anyone fascinated by information security when science has made ​​an almost unbelievable that such is impossible not to marvel at least with the highest technical level of these jinn (evil, but geniuses).

Allow me to put this article translated with appropriate credit to the readers of my blog? Brazil needs to prepare.